Max Kovalev

I've identified a potential **XSS vulnerability** in how `render_editorjs` handles links and possibly other tools, where JavaScript can be injected via the `href` attribute. Specifically, links with the `javascript:` protocol,...